Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
File: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft (raw, json)
Hash identifier: QGOcOv8uN6fNlP/sdxCbnM47gE090HHK99jqV/bo3Iw=
Subject key identifier: 83:2E:CF:11:EA:7C:45:A9:9A:96:D5:77:52:7A:E6:A9:2E:39:13:F5
Authority key identifier: 1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
Certificate issuer: /CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Certificate serial: 019D38D3BB166F7C28EDD55A36D549318BC4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
Manifest number: 1898
Signing time: Sun 29 Mar 2026 09:01:33 +0000
Manifest this update: Sun 29 Mar 2026 09:01:33 +0000
Manifest next update: Mon 30 Mar 2026 09:01:33 +0000
Files and hashes: 1: 1XzbCZ6yY8fKoxvI53eQ_YxAoE8.roa (hash: 2cHGvx3rw1zFTiwFmSKRPxp+Yh74QRl9au/Y2339KsI=)
2: Eb64F3v1oYAj-E_RQC6TCD6A0Qo.roa (hash: 5S7unqujHWRwDHCe4gkQrhEC290D97kkFboUxzuHNTk=)
3: HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl (hash: 4Ho53z5WYlD1rXLBAL2afvdlRf5Ffbdap7m1JnzkLzg=)
4: I5oIKyc-Nnsg2P5sBEZFMHv808I.roa (hash: A5np8yhL8kgzony1w/u2xXkkcbdyP8sEVHMrTdXVIdE=)
5: W__alkBuZRj8gzkXd-vzfVbHK2Q.roa (hash: 0kBZjg6sW5SXO3x1fTOof+1+5GjGHO22pAAtjoqsY2Q=)
6: cPf8LTmHuQNpFCebW57DX4X7lVg.roa (hash: EC/kmKIvEJeWcU36Llbivi0e5yeWXS5Hz9Nq+HvVB00=)
7: hmZ1mxVrzqjqx_1iP5op4hU25Ho.roa (hash: pfSMpgk/ODrUlGox+4Mj+0AxVVPVgzj1yETRt0uvYPU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:bb:16:6f:7c:28:ed:d5:5a:36:d5:49:31:8b:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c390bff65dcedca813d7a10d7ec328c2f6eac34
Validity
Not Before: Mar 29 09:01:33 2026 GMT
Not After : Mar 30 09:01:33 2026 GMT
Subject: CN=832ecf11ea7c45a99a96d577527ae6a92e3913f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:33:54:1f:bc:49:4a:5a:f0:16:47:4e:1b:d7:
7d:90:25:17:f7:2a:60:ff:d4:67:aa:fc:c0:55:00:
c9:0a:fe:4f:3a:90:2e:1d:3d:10:f8:6e:60:26:18:
bf:30:12:85:1b:fa:1e:aa:d0:0a:20:1a:6b:ce:e6:
7d:94:4e:6f:a0:e1:66:5f:cc:1d:46:65:e8:21:be:
33:cd:60:91:4f:11:93:91:7e:45:40:f1:73:45:f3:
9e:15:ef:f0:22:06:0e:99:e8:11:ca:6d:a6:32:e9:
c8:cb:35:8a:a1:77:98:43:09:4b:fa:52:68:72:f2:
37:69:54:8e:cf:63:a3:43:5c:09:44:c7:7d:d7:b9:
69:65:67:02:b3:34:94:99:b6:80:6b:65:c3:86:c9:
b6:62:31:a9:05:5c:6f:b9:98:ad:3c:13:28:7b:f4:
32:87:19:ba:ac:88:d8:8b:a3:4b:0d:de:6b:f0:03:
52:06:73:af:14:b0:42:38:12:3f:5b:41:c6:44:91:
66:6a:e2:ad:01:f0:bd:4a:d9:7e:b3:06:f7:67:25:
8b:02:b0:61:c1:fd:e8:6a:d6:0e:1c:e1:b4:2a:cb:
cd:50:35:0d:10:f0:e1:ce:3d:49:42:e4:9e:10:85:
bb:ca:58:f2:ea:45:f6:0f:cd:33:ff:56:cd:f7:d4:
92:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
83:2E:CF:11:EA:7C:45:A9:9A:96:D5:77:52:7A:E6:A9:2E:39:13:F5
X509v3 Authority Key Identifier:
keyid:1C:39:0B:FF:65:DC:ED:CA:81:3D:7A:10:D7:EC:32:8C:2F:6E:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/348104-8a41-4949-8552-a9765edc795c/1/HDkL_2Xc7cqBPXoQ1-wyjC9urDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:1b:e9:70:4e:f4:3e:b1:2f:f8:33:33:b1:eb:36:50:6a:3c:
f2:34:22:77:7b:2e:4e:b1:69:f1:39:35:4f:41:8d:ae:c9:98:
14:ec:b1:99:09:f8:79:5c:fa:82:41:d8:34:82:e0:f2:6a:56:
e0:35:f2:37:b8:eb:f8:ea:33:9c:b1:2b:4f:50:55:65:22:1d:
82:29:08:f2:6f:5a:3d:f0:71:51:51:a3:ee:2b:f4:2d:12:b8:
eb:53:97:6d:07:03:97:fd:cb:d3:08:d5:cf:f0:e5:a3:74:c8:
59:35:90:86:c6:45:55:62:22:37:d8:2a:2b:af:36:e3:98:d1:
9d:70:e8:78:d2:52:9e:29:20:f1:dc:28:d4:53:06:0f:31:d5:
84:26:59:50:0a:d8:2d:e1:da:4d:22:21:2e:76:ca:90:37:72:
62:ea:7c:c1:69:eb:96:45:63:50:4f:45:4a:83:1f:92:5b:1d:
ec:a8:30:f1:2e:c9:9b:2e:23:02:cd:b2:7b:a7:a7:04:37:da:
0e:52:91:eb:bb:44:95:4b:72:85:27:b1:29:df:42:6f:20:3c:
7f:96:fe:27:87:ea:92:89:9f:77:98:44:b2:28:05:f1:2b:39:
9e:4e:8d:12:5e:37:09:6b:ac:c5:82:a2:78:15:38:9c:06:26:
ef:0b:89:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:17 2026 by rpki-client